I have two
tomcat servers. One is client, and the other one is server. I need 2 way SSL authentication between them. Now even if I define entries for keystore and truststore in server.xml, while sending the certificate or validating the certificate, tomcat 1 uses its default keystore/truststore. So I restarted the tomcat with the -Djavax.net.ssl.trustStore=filepath and etc. Now what will happen to the certificates which are already there inside my default keystore i.e. jre/lib/security/cacerts. If any request comes with those certificates, whether my tomcat server will be able verity those even if i started the tomcat with some other truststore.
I need to know it very urgent.
Thanks in advance.